Aerospike Database Server Buffer Overflow Vulnerability (CNVD-2017-00733)

Aerospike Database Server is a distributed, scalable NoSQL database from Aerospike, Inc. A stack-based buffer overflow vulnerability exists in Aerospike Database Server version 3.10.0.3. An attacker could exploit this vulnerability to execute arbitrary code in the context of an affected...

CVE-2016-5680

Stack-based buffer overflow in cgi-bin/cgimain in NUUO NVRmini 2 1.7.6 through 3.0.0 and NETGEAR ReadyNAS Surveillance 1.1.2 allows remote authenticated users to execute arbitrary code via the sn parameter to the transferlicense command...

DEBIAN-CVE-2016-6510

Off-by-one error in epan/dissectors/packet-rlc.c in the RLC dissector in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 allows remote attackers to cause a denial of service stack-based buffer overflow and application crash via a crafted packet...

NRSS Reader 0.3.9 - Local Stack Based Overflow

Exploit for linux platform in category local exploits Program affected: NRSS RSS Reader Version: 0.3.9-1 Tested and developed under: Kali Linux 2.0 x86 - https://www.kali.org Program description: NRSS is a console based RSS reader allowing uses to read and manage RSS feeds Kali Linux 2.0 package:...

TRN Threaded USENET News Reader 3.6-23 - Local Stack Based Overflow

Exploit for linux platform in category local exploits Exploit developed using Exploit Pack v5.4 Exploit Author: Juan Sacco - http://www.exploitpack.com - email protected Program affected: Threaded USENET news reader Version: 3.6-23 Tested and developed under: Kali Linux 2.0 x86 -...

VulnCheck KEV: CVE-2010-4398

Stack-based buffer overflow in the RtlQueryRegistryValues function in win32k.sys in Microsoft Windows allows local users to gain privileges, and bypass the User Account Control UAC feature...

DSA-3481-1 glibc - security update

Bulletin has no description...

yTree 1.94-1.1 - Local Buffer Overflow

Exploit for linux platform in category dos / poc Description: yTree is prone to a stack-based overflow, an attacker could exploit this issue to execute arbitrary code in the context of the application. Failed exploit attempts will result in a denial-of-service condition. Tested and developed on:...

yTree 1.94-1.1 - Local Buffer Overflow (PoC)

Exploit Author: Juan Sacco - http://www.exploitpack.com [email protected] Program affected: yTree - File manager for terminals v1.94-1.1 Description: yTree is prone to a stack-based overflow, an attacker could exploit this issue to execute arbitrary code in the context of the application...

Moderate: Red Hat Security Advisory: redis security advisory

Updated redis packages that fix a security issue are now available for Red Hat Enterprise Linux OpenStack Platform 6.0. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating,...

kernel: execution in the early microcode loader

A stack-based buffer overflow flaw was found in the Linux kernel's early load microcode functionality. On a system with UEFI Secure Boot enabled, a local, privileged user could use this flaw to increase their privileges to the kernel ring0 level, bypassing intended restrictions in place...

UBUNTU-CVE-2015-3100

Stack-based buffer overflow in Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160 on Windows and OS X and before 11.2.202.466 on Linux, Adobe AIR before 18.0.0.144 on Windows and before 18.0.0.143 on OS X and Android, Adobe AIR SDK before 18.0.0.144 on Windows and before...

CVE-2015-2093

Stack-based buffer overflow in the Connect function in the WebGate WebEyeAudio ActiveX control allows remote attackers to execute arbitrary code via a crafted value...

Stack overflow

Multiple stack-based buffer overflows in Advantech AdamView 4.3 and earlier allow remote attackers to execute arbitrary code via a crafted 1 display properties or 2 conditional bitmap parameter in a GNI file...

Moxa VPort ActiveX SDK Plus Stack-Based Buffer Overflow Vulnerability

OVERVIEW HP’s Zero Day Initiative ZDI reports that independent researcher Ariele Caltabiano has identified a stack-based buffer overflow vulnerability in the Moxa VPort ActiveX SDK Plus application. Moxa has produced an update that mitigates this vulnerability. This vulnerability could be exploit...

BulletProof FTP Client BPS Buffer Overflow Exploit

Exploit for windows platform in category local exploits This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'BulletProof FTP Client BPS Buffer Overflow', 'Description' = %q This module...

i-FTP Schedule Buffer Overflow Exploit

This Metasploit module exploits a stack-based buffer overflow vulnerability in i-Ftp version 2.20, caused by a long time value set for scheduled download. By persuading the victim to place a specially-crafted Schedule.xml file in the i-FTP folder, a remote attacker could execute arbitrary code on...

Amazon Linux AMI : rpm (ALAS-2014-458)

It was found that RPM could encounter an integer overflow, leading to a stack-based overflow, while parsing a crafted CPIO header in the payload section of an RPM file. This could allow an attacker to modify signed RPM files in such a way that they would execute code chosen by the attacker during...

UBUNTU-CVE-2014-8504

Stack-based buffer overflow in the srecscan function in bfd/srec.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service crash and possibly have other unspecified impact via a crafted file...

Important: rpm

Issue Overview: It was found that RPM could encounter an integer overflow, leading to a stack-based overflow, while parsing a crafted CPIO header in the payload section of an RPM file. This could allow an attacker to modify signed RPM files in such a way that they would execute code chosen by the...